Package: conntrackd Version: 1:1.2.1-1 Severity: grave Tags: upstream Justification: renders package unusable
Triying to start conntrackd in daemon mode result on this: [Thu Aug 9 14:14:23 2012] (pid=3819) [notice] -- starting in daemon mode -- [Thu Aug 9 14:14:23 2012] (pid=3819) [ERROR] no dedicated links available! [Thu Aug 9 14:14:23 2012] (pid=3819) [ERROR] no dedicated links available! [Thu Aug 9 14:14:23 2012] (pid=3819) [ERROR] no dedicated links available! [Thu Aug 9 14:19:54 2012] (pid=3819) [notice] ---- shutdown received ---- I contacted netfilter list and they found a bug in libnfnetlink that strongly affects conntrackd. Also, they said that conntrackd 1.2.1 has a bug in the commit operation solved in lastest versions. The thread in netfilter mailing list: http://marc.info/?l=netfilter&m=134458290414850 -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-3-amd64 (SMP w/16 CPU cores) Locale: LANG=es_ES.UTF-8, LC_CTYPE=es_ES.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages conntrackd depends on: ii libc6 2.13-33 ii libnetfilter-conntrack3 1.0.1-1 ii libnfnetlink0 1.0.0-1 conntrackd recommends no packages. conntrackd suggests no packages. -- Configuration Files: /etc/conntrackd/conntrackd.conf changed: Sync { Mode ALARM { RefreshTime 15 CacheTimeout 180 } Multicast { IPv4_address 225.0.0.50 Group 3780 IPv4_interface 172.16.0.2 Interface eth8 SndSocketBuffer 1249280 RcvSocketBuffer 1249280 Checksum on } } General { # # Number of buckets in the caches: hash table # HashSize 8192 # # Maximum number of conntracks: # it must be >= $ cat /proc/sys/net/ipv4/netfilter/ip_conntrack_max # HashLimit 65535 # # Logfile: on (/var/log/conntrackd.log), off, or a filename # Default: off # LogFile on # # Syslog: on, off or a facility name (daemon (default) or local0..7) # Default: off # Syslog on # # Lockfile # LockFile /var/lock/conntrackd.lock # # Unix socket configuration # UNIX { Path /var/run/conntrackd.sock Backlog 20 } # # Netlink socket buffer size # SocketBufferSize 262142 # # Increase the socket buffer up to maximun if required # SocketBufferSizeMaxGrown 655355 # # Event filtering: This clause allows you to filter certain traffic, # There are currently three filter-sets: Protocol, Address and # State. The filter is attached to an action that can be: Accept or # Ignore. Thus, you can define the event filtering policy of the # filter-sets in positive or negative logic depending on your needs. # Filter { # # Accept only certain protocols: You may want to log the # state of flows depending on their layer 4 protocol. # Protocol Accept { TCP } # # Ignore traffic for a certain set of IP's. # Address Ignore { IPv4_address 127.0.0.1 # loopback IPv4_address 172.16.0.1 # cluster link IPv4_address 172.16.0.2 # cluster link # [...] } # # Uncomment this line below if you want to filter by flow state. # The existing TCP states are: SYN_SENT, SYN_RECV, ESTABLISHED, # FIN_WAIT, CLOSE_WAIT, LAST_ACK, TIME_WAIT, CLOSED, LISTEN. # # State Accept { # ESTABLISHED CLOSED TIME_WAIT CLOSE_WAIT for TCP # } } } /etc/default/conntrackd changed: CONFIG=/etc/conntrackd/conntrackd.conf -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
